[Bug 58] save() function of libipt_recent.c broken

bugzilla-daemon@netfilter.org bugzilla-daemon@netfilter.org
Sun, 01 Jun 2003 02:06:25 +0200


https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=58

email@cs-ware.de changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |REOPENED
         Resolution|FIXED                       |



------- Additional Comments From email@cs-ware.de  2003-06-01 01:57 -------
Created an attachment (id=25)
libipt_recent.c-patch against iptables-save bug


------- Additional Comments From email@cs-ware.de  2003-06-01 02:06 -------
The fix (version 1.7) doesn't resolve the bug completely. The "iptables-save" 
command doesn't create useful results:

#iptables -A INPUT -p tcp -m tcp --dport 80 -m recent --rcheck --seconds 7200 --
hitcount 4 --name httpdauth -j DROP

#iptables --list
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
DROP       tcp  --  anywhere             anywhere           tcp dpt:http 
recent: CHECK seconds: 7200 hit_count: 4 name: httpdauth side: source

#iptables-save
-A INPUT -p tcp -m tcp --dport 80 -m recent recent: --seconds 1701970164 --
hitcount 1953391971 --name  --rsource -j DROP

My patch against this bug: https://bugzilla.netfilter.org/cgi-
bin/bugzilla/showattachment.cgi?attach_id=25



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.